HIGH 7.8

GHSA-77w2-v593-vxvv

Salt junos Module Vulnerable to Code Injection via Specially Crafted YAML Payload

Details

Salt's junos execution module contained an unsafe YAML decode/load usage. A specially crafted YAML payload processed by the junos module could lead to unintended code execution under the context of the Salt process.

Are you affected?

Enter the version of the package you're using.

Affected packages

PyPI / salt

Introduced in: 0 Fixed in: 3006.17

Fix pip install --upgrade 'salt>=3006.17'

References

https://nvd.nist.gov/vuln/detail/CVE-2025-62348 [ADVISORY]
https://github.com/saltstack/salt/issues/68469 [WEB]
https://github.com/saltstack/salt/pull/68472/commits/c17fd645edef208233dcac855615fced69409a00 [WEB]
https://docs.saltproject.io/en/latest/topics/releases/3006.17.html [WEB]
https://github.com/saltstack/salt [PACKAGE]